Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

RackGuardian: Security Compliant Rack Monitoring and Protection

38 views

Published on

RackGuardian goes beyond simple rack monitoring and provides security compliant rack protection. It both monitors and secures all power, cooling, security and any SNMP based systems in your racks.

Published in: Devices & Hardware
  • Be the first to comment

  • Be the first to like this

RackGuardian: Security Compliant Rack Monitoring and Protection

  1. 1. Copyright 2017 – AlphaGuardian Networks LLC. All rights reserved
  2. 2. UPS  The Industrial Internet of Things (IIoT) is the sum of all industrial devices that are directly or indirectly connected to the Internet.  The most numerous IIoT devices are power, cooling and security …systems What is the Industrial Internet of Things? Copyright 2017 – AlphaGuardian Networks LLC
  3. 3. UPS IIoT Systems Dwarf IT Systems Copyright 2017 – AlphaGuardian Networks LLC
  4. 4.  Desktop anti-virus/firewall software is standard.  Server firewall hardware is standard. Security is Well-Defined for IT Systems Copyright 2017 – AlphaGuardian Networks LLC
  5. 5. But IIoT System Security is Vastly Lacking Copyright 2017 – AlphaGuardian Networks LLC  SNMP is the standard protocol on up to 90% of IIoT systems  SNMP was created to be Remotely Monitored with MINIMAL or NO Security
  6. 6. UPS Patrick Traynor, PhD Professor of Information Security Georgia Tech University  SNMPv1 and V2 are known to be unsecure “SNMPv3 fails to provide its advertised security guarantees…under reasonable conditions, we can read encrypted requests and forge messages between the network monitor and the host. The vulnerabilities we demonstrate are implementation agnostic, and demonstrate a fundamental flaw in the current protocol.” SNMP Systems are Easily Attacked Copyright 2017 – AlphaGuardian Networks LLC
  7. 7. Copyright 2017 – AlphaGuardian Networks LLC IIoT and IT Systems Intersect in Data Racks, Opening Both Systems to Cyberattack  All the data owned by an organization either passes through or rests in their Network and Server Racks  Racks include IIoT Power, Cooling and Security devices  Rack IIoT devices can be used as backdoors to steal, alter or destroy data from IT systems Rack Cooling System Rack Power Distribution Unit
  8. 8.  There are over 2.5 Million Server rooms with at least 1 rack and these numbers continue to grow  There are more servers in small server rooms than in all data centers – US Department of Energy  IIoT Rack power, cooling and security devices are highly vulnerable to attack. Small Server Rooms are HIGHLY Vulnerable Copyright 2017 – AlphaGuardian Networks LLC
  9. 9.  There are over 7 million network rooms in commercial buildings in the U.S.  The largest theft of university data records occurred in the university’s network closets.  The largest HIPAA fine occurred from a break-in to an insurance company’s network closet . Network Rooms are HIGHLY Vulnerable Copyright 2017 – AlphaGuardian Networks LLC
  10. 10. UPS Rack Power, Cooling & Security Systems are Easily Found and Exploited Copyright 2017 – AlphaGuardian Networks LLC
  11. 11. UPS • The Russian attack on Ukrainian power plant used control room UPS systems for their attack • The Staminus cloud attack used rack PDU units to attack the data servers • A White Hat hacker attack on servers through Rack PDU’s caused an enormous security breach on Wall Street  Three major cyber attacks have used Rack IIoT systems as key points of attack. Huge Cyberattacks Are Already Taking Place Through Rack-based IIoT Systems Copyright 2017 – AlphaGuardian Networks LLC
  12. 12.  HIPAA requires all and IIoT backup power, environmental monitoring and access controls to be protected  Gramm Leach Bliley requires strict compliance in protecting power, cooling and access IIoT systems  Compliance includes full: • Cybersecurity • Physical Security • Operational Security Federal Laws Now Require Rack IIoT Security Copyright 2017 – AlphaGuardian Networks LLC
  13. 13.  The New York Cybersecurity Act for Financial Service Companies requires all IT and supporting IIoT systems to be protected.  Covers over 200,000 companies. Over 100,000 server, network & telecom rooms in Manhattan alone.  Compliance includes: • Cybersecurity • Physical Security • Operational Security NY State Law Now Requires Rack IIoT Security Copyright 2017 – AlphaGuardian Networks LLC
  14. 14. The Solution: RackGuardian® Copyright 2017 – AlphaGuardian Networks LLC
  15. 15. UPS  RackGuardian® Smart Firewall • Blocks any attempt to communicate with IIoT devices • Monitors and encrypts data from each IIoT device it protects. • Securely pushes all monitoring data to AGN Secure Cloud RackGuardian: Total Cybersecurity Copyright 2017 – AlphaGuardian Networks LLC
  16. 16. UPS  Integrates with all major card access …systems to secure entrance to racks  Constantly scans for signs of physical …breach with tamper analytics  Instant mobile notification of failed …access attempts RackGuardian: Total Physical Security Copyright 2017 – AlphaGuardian Networks LLC
  17. 17. UPS  Monitors all brands of power, …cooling & security IIoT systems  Self-Learning Alarm Analytics ensure …NO false alarms and NO alarm floods.  Cloud-based backend ensures no …distance limits and no local server …maintenance RackGuardian: Total Operational Security Copyright 2017 – AlphaGuardian Networks LLC
  18. 18. UPS RackGuardian: How It Works Copyright 2017 – AlphaGuardian Networks LLC
  19. 19. UPS RackGuardian: Connection Details Copyright 2017 – AlphaGuardian Networks LLC
  20. 20. +1-925-421-0030 bhunter@alphaguardian.net www.alphaguardian.net Contact: Bob Hunter

×